The Boston-based integrated health delivery network notified 3,300 individuals that their protected health information may have been compromised by a phishing attack.
A group of its workforce members had received phishing emails.
They provided information in response to the email, believing the messages were legitimate.
Some of the emails contained patient demographic information, such as names, addresses, dates of birth, and telephone numbers.
Social Security numbers, and clinical information, such as diagnosis, treatment received, medical record numbers, medical diagnosis codes, or health insurance information were also compromised.
The organization's electronic health records system was not compromised by the attack.
Source: https://www.bizjournals.com/boston/news/2018/02/05/partners-healthcare-says-data-breach-exposed.html
TPRM report: https://scoringcyber.rankiteo.com/company/partners-health-care
"id": "par11547622",
"linkid": "partners-health-care",
"type": "Breach",
"date": "02/2018",
"severity": "60",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 3300,
'industry': 'Healthcare',
'location': 'Boston',
'type': 'Integrated Health Delivery Network'}],
'attack_vector': 'Phishing Emails',
'data_breach': {'data_exfiltration': True,
'number_of_records_exposed': 3300,
'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Names',
'Addresses',
'Dates of Birth',
'Telephone Numbers',
'Social Security Numbers',
'Diagnosis',
'Treatment Received',
'Medical Record Numbers',
'Medical Diagnosis Codes',
'Health Insurance Information']},
'description': 'The Boston-based integrated health delivery network notified '
'3,300 individuals that their protected health information may '
'have been compromised by a phishing attack. A group of its '
'workforce members had received phishing emails and provided '
'information in response to the email, believing the messages '
'were legitimate. Some of the emails contained patient '
'demographic information, such as names, addresses, dates of '
'birth, and telephone numbers. Social Security numbers, and '
'clinical information, such as diagnosis, treatment received, '
'medical record numbers, medical diagnosis codes, or health '
'insurance information were also compromised. The '
"organization's electronic health records system was not "
'compromised by the attack.',
'impact': {'data_compromised': ['Names',
'Addresses',
'Dates of Birth',
'Telephone Numbers',
'Social Security Numbers',
'Diagnosis',
'Treatment Received',
'Medical Record Numbers',
'Medical Diagnosis Codes',
'Health Insurance Information']},
'initial_access_broker': {'entry_point': 'Phishing Emails'},
'motivation': 'Data Exfiltration',
'post_incident_analysis': {'root_causes': 'Human Error'},
'title': 'Phishing Attack on Boston-based Integrated Health Delivery Network',
'type': 'Phishing Attack',
'vulnerability_exploited': 'Human Error'}